Fleuret raises €3.5M to industrialize agentic AI pentesting
A European seed round to make pentesting continuous, fast and affordable. Webapp, API and external infrastructure today. Cloud, Active Directory and mobile coming in 2026.
Yanis Grigy and Augustin Ponsin, founding team
What we're announcing
We're raising €3.5M to accelerate Fleuret, an offensive security platform driven by agentic AI. The round includes €2.8M in equity, led by RAISE Capital alongside Auriga Cyber Ventures and Wind Capital, backed by a circle of operator angels from European cybersecurity. On top of that, a €700k Bpifrance innovation loan.
Funds close mid-May 2026. They fund product, team and the scopes our customers need for NIS2, DORA and ISO 27001.
Why now
European CIOs ship every day. Pentest firms deliver in 2 to 4 weeks, at €10,000 and up, once or twice a year. Between audits, 3 to 12 months of blind exposure. The math no longer works. Fleuret delivers human-grade pentests in hours, with reproducible PoC and audit-ready reports, at €2,500 per scope. Zero false positives tolerated.
What this round funds
Product
Webapp, REST and GraphQL APIs, external infrastructure in production. Cloud, Active Directory and mobile in alpha with our design partners, production-ready in 2026.
Team
Scaling from 5 to roughly 12 people by end of 2026: four security and product engineers, one to two sales hires, Paris-based.
Distribution
Direct go-to-market to European CISOs, CTOs and DPOs, plus partnerships with cyber insurers and specialized firms. EU hosting (fra1), data residency in Europe.
Our investors
RAISE Capital leads. Auriga Cyber Ventures and Wind Capital co-invest.
Business angels
Operators who built European cybersecurity: founders of Almond, GitGuardian, Stoïk, OVRSEA and Hornetsecurity. Their customer network, product expertise and operator experience compress years of learning for us.
'%3e%3cpath%20id='Trac&%23xE9;_1'%20data-name='Trac&%23xE9;%201'%20d='M26.028,29.527C16.965,26.665,9.491,31.46,9.592,36.65c.087,4.439,4.185,6.747,8,6.734a8.4,8.4,0,0,0,8.429-8.364c.037-1.732,0-5.493,0-5.493m8.505,19.3H29.017c-1.7,0-3.079-2.55-3.079-4.25h-.1a14.666,14.666,0,0,1-10.719,5.17C6.624,49.749,0,45.382,0,36.788c0-8,7.5-13.7,15.118-14.54,5.1-.56,11.048-.138,19.3,1.7Z'%20transform='translate(0%20-18.094)'%20fill='%2300ecb2'%3e%3c/path%3e%3cpath%20id='Trac&%23xE9;_2'%20data-name='Trac&%23xE9;%202'%20d='M275.231,67.922h8.849v2.493h.073c1.426-1.7,3.657-2.991,7.46-2.991,3.95,0,5.522,1.23,6.619,3.025,1.28-1.7,3.657-3.025,7.35-3.025,4.388,0,7.9,1.728,7.9,6.149V86.1s-1.747-.027-3.355-.027c-2.666,0-5.786-.815-5.786-5.5V75.833c0-1.861-.841-2.426-2.45-2.426-1.9,0-3.108.8-3.108,3.058V86.1h-8.849V75.833c0-1.861-.841-2.426-2.45-2.426-1.9,0-3.108.8-3.108,3.058V86.1h-9.142Z'%20transform='translate(-226.181%20-55.408)'%20fill='%2300ecb2'%3e%3c/path%3e%3cpath%20id='Trac&%23xE9;_3'%20data-name='Trac&%23xE9;%203'%20d='M513.278,80.377c3.693,0,5.229-1.529,5.229-4.454,0-2.892-1.536-4.421-5.229-4.421-3.657,0-5.229,1.529-5.229,4.421,0,2.925,1.572,4.454,5.229,4.454m0-14.26c10.275,0,14.809,3.124,14.809,9.805,0,6.714-4.461,9.839-14.809,9.839s-14.809-3.124-14.809-9.839c0-6.648,4.461-9.805,14.809-9.805'%20transform='translate(-409.634%20-54.334)'%20fill='%2300ecb2'%3e%3c/path%3e%3cpath%20id='Trac&%23xE9;_4'%20data-name='Trac&%23xE9;%204'%20d='M673.431,67.922h8.849v2.26h.073c.987-1.163,3.839-2.759,8.264-2.759,5.046,0,8.849,2.061,8.849,7.113V86.1s-1.511-.023-3.279-.023c-2.712,0-5.862-1.429-5.862-5.619V76.7c0-2.293-1.317-3.291-3.511-3.291-2.45,0-4.242,1.3-4.242,4.321V86.1h-9.142Z'%20transform='translate(-553.415%20-55.408)'%20fill='%2300ecb2'%3e%3c/path%3e%3cpath%20id='Trac&%23xE9;_5'%20data-name='Trac&%23xE9;%205'%20d='M841.9,25.843c-3.547,0-5.01-1.728-5.01-4.122,0-2.36,1.645-4.122,4.973-4.122,3.547,0,5.046,1.562,5.046,4.122,0,2.626-1.5,4.122-5.009,4.122m14.128-15.812c0-7.183-.016-10.02-.016-10.02S854.139,0,852.33,0a5.894,5.894,0,0,0-5.45,5.9v8.679h-.046c-1.573-1.7-4.205-2.559-7.935-2.559-5.923,0-11.372,2.958-11.372,9.705s5.449,9.706,11.372,9.706c4.1,0,6.582-.93,8.227-2.659h.073V30.7h8.849V10.031Z'%20transform='translate(-680.049)'%20fill='%2300ecb2'%3e%3c/path%3e%3cpath%20id='Trac&%23xE9;_6'%20data-name='Trac&%23xE9;%206'%20d='M218.882,30.7V10.031h-.023c0-7.183-.016-10.02-.016-10.02S216.527,0,214.718,0c-2.605,0-5,2.536-5,5.9V30.55Zm-8.922-1.928h.073'%20transform='translate(-172.339)'%20fill='%2300ecb2'%3e%3c/path%3e%3c/g%3e%3c/svg%3e)
'%3e%3cpath%20fill='%23fff'%20d='M105.339%2031.51h8.316v1.745h-10.286l-.008-16.513h10.179v1.745h-8.193v5.509h7.129v1.745h-7.137v5.77-.001Zm-14.02-7.667c-2.05-.855-3.092-1.57-3.092-3.111%200-.856.654-2.474%203.128-2.474%201.548%200%202.46.553%203.343%201.088l.151.091%201.084-1.372-.077-.055c-.61-.45-2.268-1.497-4.478-1.497-3.717%200-5.066%202.537-5.066%204.242%200%202.829%201.803%203.819%204.16%204.819%202.61%201.112%204.026%202.016%204.026%203.6%200%201.489-1.276%202.569-3.035%202.569-2.229%200-4.108-1.816-4.315-2.023l-.073-.072-1.129%201.43.058.057c1.084%201.085%203.155%202.352%205.421%202.352%202.828%200%205.13-1.966%205.13-4.383%200-2.894-2.372-4.095-5.235-5.262Zm-14.75%202.765%203.462%206.647h-2.305l-3.191-6.372h-4.273v6.372h-1.981V16.742h6.634a5.078%205.078%200%200%201%205.073%205.073%205.054%205.054%200%200%201-3.42%204.793Zm-1.93-8.117h-4.377v6.647h4.377a3.327%203.327%200%200%200%203.323-3.324%203.327%203.327%200%200%200-3.323-3.323Zm60.513%2014.763h-2.189l-1.72-3.873h-9.047l-1.72%203.873h-2.189l7.408-16.513h2.05l.024.054%207.384%2016.46-.001-.001Zm-4.685-5.617-3.564-8.017h-.366l-3.565%208.017h7.495ZM60.392%2016.741l-6.06%2013.63h-.366l-6.06-13.63h-2.19l7.407%2016.513h2.048l7.41-16.513h-2.19.001Zm-18.611%208.282c0%204.747-3.729%208.465-8.49%208.465-4.76%200-8.463-3.718-8.463-8.465%200-4.746%203.797-8.51%208.464-8.51%204.666%200%208.489%203.817%208.489%208.51Zm-8.489-6.532c-3.578%200-6.49%202.93-6.49%206.532a6.48%206.48%200%200%200%206.49%206.485c3.58%200%206.515-2.909%206.515-6.485%200-3.577-2.922-6.532-6.515-6.532Z'/%3e%3cpath%20fill='%2349D6CB'%20d='M16.024%2016.741H-.488v5.505h16.512V16.74Z'/%3e%3cpath%20fill='%2300898F'%20d='M16.024%2022.246H-.488v5.505h16.512v-5.505Z'/%3e%3cpath%20fill='%2300555C'%20d='M16.024%2027.75H-.488v5.504h16.512V27.75Z'/%3e%3c/g%3e%3cdefs%3e%3cclipPath%20id='a'%3e%3cpath%20fill='%23fff'%20d='M0%200h152v50H0z'/%3e%3c/clipPath%3e%3c/defs%3e%3c/svg%3e)
NIS2, DORA, ISO 27001
Every Fleuret report maps findings to the frameworks your auditors expect. NIS2 directive and DORA regulation require recurring penetration tests. Fleuret makes it a continuous operation, not a yearly project.
Just the beginning
If you're a CISO, CTO, DPO or executive at a European company of 50 to 1,000 employees, we want to talk. Book a 30-minute demo with a founder.